06-29-2016 07:59 AM
First time posting so bear with me.
I am looking for a best practice design reference for a customer that wants a two tier firewall structure.
--Does anyone have a reference link/document/book?
--Should the customer use different vendors at each tier, I know that is blasphemy but I'm asking anyway since they wanted to Palo Alto on the 1st tier and ASA's on 2nd tier. Current design in front of the client has the ASA in Transparent mode to conserve IP space is what I am being told.
--Is double-natting a best practice? Assuming we recommend ASA in routed mode over transparent mode.
I will be asking these same questions at Cisco Live in a few weeks but would like to get back to my customer sooner that that.
Any help is certainly appreciated.
Thanks in advance.
-Ken
06-29-2016 06:54 PM
Hi Ken,
I am also posting first time.
Architecture will be vary depends upon client requirement.
Always routed mode firewall is good for troubleshooting point of view. I hope this may be useful.
Thanks,
Rajesh Vemuri.
06-30-2016 04:20 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide